Transitioning from SAP Code Vulnerability Analyzer (CVA) to the Cybersecurity Extension for SAP requires a structured approach to system configuration. This guide outlines the necessary steps to prepare your SAP Solution Manager platform for the transition, ensuring a seamless move to Layer Seven Security’s alternative solution.
Why transition to the Cybersecurity Extension for SAP?
The Cybersecurity Extension for SAP serves as a direct alternative to SAP CVA for custom code security, threat detection, and vulnerability management. As an addon for SAP Solution Manager—a platform used by over 12,000 SAP customers for application lifecycle management—it integrates natively into your existing SAP infrastructure, with usage rights already included in standard SAP support.
How do you prepare your Solution Manager for the transition?
The Cybersecurity Extension for SAP requires a standard, fully configured SAP Solution Manager environment. You must verify your Managed System Configuration to ensure all target systems are ready for the transition.
How to check Managed System Configuration
To verify your configuration, follow these steps in your SAP system:
- Execute transaction
SOLMAN_SETUPor navigate to SAP Solution Manager Configuration – Configuration (All Scenarios). - Select Managed System Configuration within the Cross Scenario Configuration menu.
- In the Technical Systems tab, highlight the relevant system and select Configure System – Full Configuration.
- Confirm that all configuration steps are marked as green (completed).
- For any steps marked red or yellow, follow the provided guided procedures to resolve them.
Note that for this transition, the status of Maintain Users, Finalize Configuration, and Check Configuration may remain yellow. Additionally, the following activities in Finalize Configuration are not required:
- Setup Single Sign-On
- Activate E2E Trace Upload Service
- Introscope Host Adaptor
- Apply Settings for EWA Monitoring
- Byte Code Adaptor Installation (Java Systems)
- Enable Remote R/3 Connection
Repeat this process for every target system in your landscape. Once these configurations are confirmed, you can proceed to remove SAP CVA consoles, sensors, users, and addons.
Frequently Asked Questions
What is the Cybersecurity Extension for SAP?
The Cybersecurity Extension for SAP is a vulnerability management and security tool developed by Layer Seven Security. It acts as an alternative to SAP Code Vulnerability Analyzer (CVA) and is designed as an addon for the SAP Solution Manager platform.
Is SAP Solution Manager required for this transition?
Yes. Unlike SAP CVA, the Cybersecurity Extension for SAP is built specifically for SAP Solution Manager. Because Solution Manager is a standard platform for application lifecycle management, it allows for deeper integration and utilizes existing SAP support rights.
Can I remove SAP CVA after the transition?
Yes. Once you have successfully transitioned to the Cybersecurity Extension for SAP, you can safely remove SAP CVA consoles, sensors, system users, and addons from your SAP landscape.